Making the case for physical security.

ISO 27001 is the international standard which defines the requirements for an Information Security Management System (ISMS). The requirements are wide-ranging and feature controls specifically relating to physical and environmental security. When LRQA audit organisations against ISO 27001, nonconformities relating to physical security are some of the most common.

Here, Rob Acker, Technical Manager Information Security and Business Continuity at LRQA, highlights the importance of physical security to achieving ISO 27001 certification, identifying the steps you can take to ensure compliance.